CN107909370B - Multiple safety control method and system for electronic payment platform - Google Patents
Multiple safety control method and system for electronic payment platform Download PDFInfo
- Publication number
- CN107909370B CN107909370B CN201711261593.7A CN201711261593A CN107909370B CN 107909370 B CN107909370 B CN 107909370B CN 201711261593 A CN201711261593 A CN 201711261593A CN 107909370 B CN107909370 B CN 107909370B
- Authority
- CN
- China
- Prior art keywords
- server
- authentication
- electronic payment
- information
- cloud server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3823—Payment protocols; Details thereof insuring higher security of transaction combining multiple encryption tools for a transaction
Landscapes
- Business, Economics & Management (AREA)
- Engineering & Computer Science (AREA)
- Accounting & Taxation (AREA)
- Computer Security & Cryptography (AREA)
- Finance (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention provides a multiple security control method and a system of an electronic payment platform, wherein the multiple security control method of the electronic payment platform comprises the steps that the electronic payment platform respectively sends related information of a user to a first authentication server and a second authentication server for authentication; the electronic payment platform synchronizes the payment related information to the first cloud server and the second cloud server respectively; the local server respectively receives the sent related payment information, extracts authentication information from the related payment information, and sends the authentication information to the first authentication server and the second authentication server again for authentication, the local server compares whether the related payment information sent by the first cloud server and the second cloud server is the same, and if the related payment information is the same, the related payment information is synchronized into a local database through the local server; and after the local database is successfully synchronized, the local server sends a confirmation instruction to the electronic payment platform to complete the electronic payment transaction. The electronic payment can be safer through the invention.
Description
Technical Field
The invention relates to the technical field of electronic commerce, in particular to a multiple security control method and a multiple security control system for an electronic payment platform.
Background
Electronic payment refers to the act of securely transmitting payment information between a consumer, a merchant and a financial institution to a bank or a corresponding processing institution via an information network by using secure electronic means to realize currency payment or fund transfer.
Electronic payment has also become a major mode of consumption as electronic commerce has developed. At present, electronic payment modes are various, and the method is very suitable for ensuring a safety certification mechanism. For example, in the face of network virus attack, the server paralysis caused by the network virus attack cannot work, and the method has a good mode to process. But at present, the authentication data and the transaction data are tampered maliciously, and great worry is also generated. Since many current mechanisms only judge the integrity of data, there are drawbacks to modifying data.
Disclosure of Invention
To solve the above mentioned problems, an embodiment of the present invention provides a multiple security control method for an electronic payment platform, including:
s100, when a user logs in an electronic payment platform, the electronic payment platform respectively sends the relevant information of the user to a first authentication server and a second authentication server for authentication;
s200, if the first authentication server and the second authentication server are authenticated successfully, the electronic payment platform starts payment processing; the electronic payment platform synchronizes payment related information to the first cloud server and the second cloud server respectively;
s300, the local server receives the related payment information sent by the first cloud server and the second cloud server respectively, extracts authentication information from the related payment information, and sends the authentication information to the first authentication server and the second authentication server again for authentication;
s400, after the first authentication server and the second authentication server are authenticated successfully, the local server compares whether the related payment information sent by the first cloud server and the second cloud server is the same or not, and if the related payment information is the same, the related payment information is synchronized to a local database through the local server;
and S500, after the local database is synchronized successfully, the local server sends a confirmation instruction to the electronic payment platform through the first cloud server and/or the second cloud server to complete the electronic payment transaction.
Further, in step S400, if the local server compares the related payment information sent by the first cloud server and the second cloud server, the transaction is aborted.
Further, in step S400, if there is a failure in authentication between the first authentication server and the second authentication server, the transaction is terminated.
Further, the local server adopts a double backup system.
Further, when transaction abnormality occurs in steps S100-S500, the query data is based on the local database.
The invention also provides a multiple safety control system of the electronic payment platform, which comprises the electronic payment platform, a first cloud server, a second cloud server, a first authentication server, a second authentication server, a local server and a local database; the working method of the multiple safety control system of the electronic payment platform comprises the following steps:
s100, when a user logs in an electronic payment platform, the electronic payment platform respectively sends the relevant information of the user to a first authentication server and a second authentication server for authentication;
s200, if the first authentication server and the second authentication server are authenticated successfully, the electronic payment platform starts payment processing; the electronic payment platform synchronizes payment related information to the first cloud server and the second cloud server respectively;
s300, the local server receives the related payment information sent by the first cloud server and the second cloud server respectively, extracts authentication information from the related payment information, and sends the authentication information to the first authentication server and the second authentication server again for authentication;
s400, after the first authentication server and the second authentication server are authenticated successfully, the local server compares whether the related payment information sent by the first cloud server and the second cloud server is the same or not, and if the related payment information is the same, the related payment information is synchronized to a local database through the local server;
and S500, after the local database is synchronized successfully, the local server sends a confirmation instruction to the electronic payment platform through the first cloud server and/or the second cloud server to complete the electronic payment transaction.
For the multiple security control method and the multiple security control system for the electronic payment platform provided by the embodiment of the invention, the transaction security of the electronic payment platform can be ensured through the cooperation of the multiple authentication servers, the cloud server and the local server.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings needed to be used in the description of the embodiments or the prior art will be briefly introduced below, and it is obvious that the drawings in the following description are some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to these drawings without creative efforts.
Fig. 1 is a schematic flow chart of a multiple security control method for an electronic payment platform according to the present invention;
fig. 2 is a schematic diagram of a multi-security control system of an electronic payment platform according to the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are some, but not all, embodiments of the present invention. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Fig. 1 is a schematic flow chart of a multiple security control method for an electronic payment platform according to the present invention, as shown in fig. 1, the method includes:
s100, when a user logs in an electronic payment platform, the electronic payment platform respectively sends the relevant information of the user to a first authentication server and a second authentication server for authentication;
the relevant information of the user can comprise a user name, a password, a mobile phone number, an identity card and other authentication information;
s200, if the first authentication server and the second authentication server are authenticated successfully, the electronic payment platform starts payment processing; the electronic payment platform synchronizes payment related information to the first cloud server and the second cloud server respectively;
the payment related information may include amount, goods, information of both parties of the transaction, etc.; the double-authentication server aims to avoid that the judgment cannot be made when a single authentication server is abnormal;
s300, the local server receives the related payment information sent by the first cloud server and the second cloud server respectively, extracts authentication information from the related payment information, and sends the authentication information to the first authentication server and the second authentication server again for authentication;
in this step, authentication confirmation is performed again, which is also information for ensuring the user;
s400, after the first authentication server and the second authentication server are authenticated successfully, the local server compares whether the related payment information sent by the first cloud server and the second cloud server is the same or not, and if the related payment information is the same, the related payment information is synchronized to a local database through the local server;
in the step, the problem of transaction data synchronization caused by the fact that one cloud server is abnormal is solved. When the comparison is the same and the information is not tampered in any server, the information is synchronized to the local database, so that the integrity and the safety of the local database can be ensured;
in step S400, if the local server compares the related payment information sent by the first cloud server and the second cloud server, the transaction is terminated.
In step S400, if there is a failure in authentication between the first authentication server and the second authentication server, the transaction is terminated.
And S500, after the local database is synchronized successfully, the local server sends a confirmation instruction to the electronic payment platform through the first cloud server and/or the second cloud server to complete the electronic payment transaction.
The local reserved payment information is secure and reliable through steps S100-S500. Therefore, when transaction abnormality occurs in steps S100 to S500, the query data is based on the local database.
Fig. 2 is a schematic structural diagram of a multiple security control system of an electronic payment platform according to the present invention, and as shown in fig. 2, the system includes an electronic payment platform, a first cloud server, a second cloud server, a first authentication server, a second authentication server, a local server, and a local database; the working method of the multiple security control systems of the electronic payment platform is as described above, and is not described herein again.
It should be noted that the most important solution of the present invention is to solve the security problem caused by data tampering, but not other network security problems, such as network congestion, database crash caused by virus, and the like. Because data is still complete after data is tampered, the data can still be treated as legal under many security mechanisms. The invention simply and efficiently solves the safety problem caused by malicious tampering of data through multiple authentications and processing of multiple cloud servers and local servers.
Finally, it should be noted that: the above embodiments are only used to illustrate the technical solution of the present invention, and not to limit the same; while the invention has been described in detail and with reference to the foregoing embodiments, it will be understood by those skilled in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some or all of the technical features may be equivalently replaced; and the modifications or the substitutions do not make the essence of the corresponding technical solutions depart from the scope of the technical solutions of the embodiments of the present invention.
Claims (4)
1. A multiple security control method for an electronic payment platform is characterized by comprising the following steps: s100, when a user logs in an electronic payment platform, the electronic payment platform respectively sends the relevant information of the user to a first authentication server and a second authentication server for authentication;
s200, if the first authentication server and the second authentication server are authenticated successfully, the electronic payment platform starts payment processing; the electronic payment platform synchronizes the payment related information to a first cloud server and a second cloud server respectively;
s300, the local server receives the related payment information sent by the first cloud server and the second cloud server respectively, extracts authentication information from the related payment information, and sends the authentication information to the first authentication server and the second authentication server again for authentication;
s400, after the first authentication server and the second authentication server are authenticated successfully, the local server compares whether the related payment information sent by the first cloud server and the second cloud server is the same or not, if yes, the related payment information is synchronized to a local database through the local server, and if one authentication between the first authentication server and the second authentication server is failed, the transaction is stopped;
s500, after the local database is synchronized successfully, the local server sends a confirmation instruction to the electronic payment platform through the first cloud server and/or the second cloud server to complete the electronic payment transaction;
when transaction abnormality occurs in steps S100-S500, the query data is based on the local database.
2. The multiple security control method for the electronic payment platform of claim 1, wherein in step S400, if the local server compares the related payment information sent by the first cloud server and the second cloud server, the transaction is aborted.
3. The multiple security control method for electronic payment platform as claimed in claim 1, wherein the local server employs a dual backup system.
4. The multiple safety control system of the electronic payment platform is characterized by comprising the electronic payment platform, a first cloud server, a second cloud server, a first authentication server, a second authentication server, a local server and a local database; the working method of the multiple safety control system of the electronic payment platform comprises the following steps:
s100, when a user logs in an electronic payment platform, the electronic payment platform respectively sends the relevant information of the user to a first authentication server and a second authentication server for authentication;
s200, if the first authentication server and the second authentication server are authenticated successfully, the electronic payment platform starts payment processing; the electronic payment platform synchronizes payment related information to the first cloud server and the second cloud server respectively;
s300, the local server receives the related payment information sent by the first cloud server and the second cloud server respectively, extracts authentication information from the related payment information, and sends the authentication information to the first authentication server and the second authentication server again for authentication;
s400, after the first authentication server and the second authentication server are authenticated successfully, the local server compares whether the related payment information sent by the first cloud server and the second cloud server is the same or not, and if the related payment information is the same, the related payment information is synchronized to a local database through the local server;
and S500, after the local database is synchronized successfully, the local server sends a confirmation instruction to the electronic payment platform through the first cloud server and/or the second cloud server to complete the electronic payment transaction.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711261593.7A CN107909370B (en) | 2017-12-04 | 2017-12-04 | Multiple safety control method and system for electronic payment platform |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711261593.7A CN107909370B (en) | 2017-12-04 | 2017-12-04 | Multiple safety control method and system for electronic payment platform |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN107909370A CN107909370A (en) | 2018-04-13 |
| CN107909370B true CN107909370B (en) | 2020-09-22 |
Family
ID=61854326
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201711261593.7A Expired - Fee Related CN107909370B (en) | 2017-12-04 | 2017-12-04 | Multiple safety control method and system for electronic payment platform |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107909370B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111432365B (en) * | 2020-03-19 | 2020-12-29 | 武汉谦屹达管理咨询有限公司 | Financial big data processing method and system applying 5G network and block chain |
Family Cites Families (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1362673A (en) * | 2001-01-02 | 2002-08-07 | 康毅系统整合股份有限公司 | Terminal equipment security control mechanism for network transaction security |
| CN101770619A (en) * | 2008-12-31 | 2010-07-07 | 中国银联股份有限公司 | Multiple-factor authentication method for online payment and authentication system |
| CN103186851B (en) * | 2011-12-30 | 2018-05-25 | 上海博泰悦臻电子设备制造有限公司 | Electronic fare payment system based on cloud data processing technique |
| CN103905194B (en) * | 2012-12-26 | 2017-05-24 | 中国电信股份有限公司 | Identity traceability authentication method and system |
| US10867301B2 (en) * | 2016-04-18 | 2020-12-15 | Alitheon, Inc. | Authentication-triggered processes |
| CN106022754B (en) * | 2016-05-12 | 2019-05-21 | 宁波大学 | Mobile wallet near-field communication cCredit card payment method |
-
2017
- 2017-12-04 CN CN201711261593.7A patent/CN107909370B/en not_active Expired - Fee Related
Also Published As
| Publication number | Publication date |
|---|---|
| CN107909370A (en) | 2018-04-13 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11502848B2 (en) | Blockchain entity, off-chain entity, certification device for blockchain operations and method for performing a cooperation between a blockchain entity and an off-chain entity | |
| CN111415163B (en) | Block chain-based service processing and verifying method, system and verifying node | |
| CN101651675B (en) | By the method and system that authentication code is verified client | |
| EP3373554A1 (en) | Authentication in ubiquitous environment | |
| AU2019204713A1 (en) | Transferring digital tickets based on blockchain networks | |
| US20130085942A1 (en) | Electronic funds transfer | |
| CN111932233B (en) | Resource transfer method, device and equipment | |
| CN101770669A (en) | Bank automatic warning system and method thereof | |
| US11570168B2 (en) | Techniques for repeat authentication | |
| CN1435985A (en) | Dynamic cipher safety system and dynamic cipher generating method | |
| US20230298002A1 (en) | Digital wallet tracing engine | |
| CN110224985B (en) | Data processing method and related device | |
| CN113592477B (en) | Cross-chain asset transfer method, computer device, and storage medium | |
| CN110879826A (en) | Credit blacklist sharing method and device based on block chain | |
| CN112231755B (en) | Data authorization method, device and system based on blockchain | |
| TWM637453U (en) | Fido identity verification system based on chip financial card | |
| CN107909370B (en) | Multiple safety control method and system for electronic payment platform | |
| KR102376783B1 (en) | The blockchain-based transaction history confirmation system | |
| KR20220064570A (en) | Server for communicating payment instruction and operating method of server for communicating payment instruction | |
| CN107491967B (en) | Method and system for inputting password through network payment | |
| KR20180054972A (en) | Method for Operating Mobile Safety Remittance based on Verification of the Remittee | |
| CN111612486A (en) | Online electronic coupon deduction method based on tamper-proof encryption algorithm | |
| CN110648235A (en) | Cross-chain asset transfer method based on trusted computing environment (TEE) | |
| CA3100176A1 (en) | System and method for secure distribution of resource transfer request data | |
| CN111324876A (en) | Exchange login method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20200922 Termination date: 20211204 |